d33d81715a7b82bd8095f087df491c47_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d33d81715a7b82bd8095f087df491c47_JaffaCakes118
Size

328KB
MD5

d33d81715a7b82bd8095f087df491c47
SHA1

19a689b9534d596252ea516e2528899b8ba9e7d3
SHA256

5a4100103cc3f325647d86ce985223559d7f1a1275a1566adf4a779dcbb4397f
SHA512

32fb12babf1abbbda69ebbbd047a7ee58f83c312e353e07dd5e7f9f6357a9d1766d4628bc0a415d97d9ee3701adaae397a4901aa4097b780f080c4891b9b75bc
SSDEEP

6144:bRAOK8ScFL98l6PWsqlVSJK0+zel/hAZSgA4yMklgllGlJlyFxJ4flblslyltvYG:e8HZqIHCKK0H/hAuTM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d33d81715a7b82bd8095f087df491c47_JaffaCakes118

Files

d33d81715a7b82bd8095f087df491c47_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cba594e1322f55ebc991676f27d42264

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowCursor
TabbedTextOutW
RedrawWindow
MessageBoxA
FreeDDElParam
TabbedTextOutA
GetClipboardViewer
OemToCharW
SetWindowContextHelpId
DrawCaption
CreateMDIWindowA
GetKeyboardState
LoadMenuW
CopyAcceleratorTableA
EnumPropsExW
InsertMenuItemW
AppendMenuW
RegisterClassExA
DdeCmpStringHandles
InflateRect
CharLowerW
GetMenuStringW
GetDlgItemTextW
MessageBoxExA
SetRect
RegisterClassA
OemToCharBuffW
DefWindowProcA
wvsprintfA
SetMenuDefaultItem
GetCaretPos
WinHelpA
ShowWindow
GetMenuItemCount
SetClassWord
CreateWindowStationA
DdeConnectList
FindWindowExW
CharUpperW
DestroyIcon
SetForegroundWindow
SwapMouseButton
IsCharAlphaNumericA
GetInputState
GetWindowTextA
GetKeyboardLayoutList
CreateWindowExW
GetScrollInfo
CreateMDIWindowW
ToUnicodeEx
AnimateWindow
UnregisterClassW
DestroyWindow
GetForegroundWindow

kernel32

WritePrivateProfileStringA
GetSystemTime
OpenMutexA
LoadLibraryW
CreateDirectoryA
VirtualQuery
GetLastError
FindResourceExA
SetHandleCount
GetLogicalDriveStringsA
DeleteCriticalSection
CreateMutexA
TlsSetValue
CompareStringA
GetCurrentProcess
GetModuleHandleA
FoldStringW
EnumResourceTypesW
TlsGetValue
InterlockedIncrement
GetThreadSelectorEntry
GetProfileStringA
LoadLibraryA
GetStdHandle
CreateToolhelp32Snapshot
GetLocalTime
GetSystemTimeAdjustment
LCMapStringA
GetProcAddress
SetFilePointer
RtlUnwind
WideCharToMultiByte
GetCurrentThread
ReadConsoleInputW
IsBadWritePtr
InterlockedExchange
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStringTypeA
SetConsoleCtrlHandler
TerminateProcess
GetStringTypeW
GetProcessHeap
InitializeCriticalSection
EnumCalendarInfoW
MoveFileA
GetNumberFormatW
lstrcmpW
UnhandledExceptionFilter
LCMapStringW
CloseHandle
InterlockedDecrement
GetFileAttributesW
SetEnvironmentVariableA
GetDiskFreeSpaceA
SetLastError
GetUserDefaultLangID
FlushFileBuffers
VirtualAlloc
HeapAlloc
WritePrivateProfileStructA
GetFileType
DuplicateHandle
GetStartupInfoA
WriteFile
SetStdHandle
SetConsoleTitleW
ExitProcess
HeapDestroy
ReadFileEx
GetProcessShutdownParameters
GetTickCount
VirtualProtect
LoadLibraryExW
FreeResource
HeapFree
GetCurrentThreadId
LeaveCriticalSection
CompareStringW
GetThreadPriorityBoost
GetCurrentProcessId
GetVersion
QueryPerformanceCounter
VirtualFree
HeapCreate
GetOEMCP
MultiByteToWideChar
GetEnvironmentStrings
DosDateTimeToFileTime
GetCPInfo
GetTimeZoneInformation
GlobalAddAtomA
EnterCriticalSection
TlsAlloc
GetEnvironmentStringsW
TlsFree
GetACP
HeapReAlloc
ReadFile
GetProfileSectionA
GetCommandLineA
GetModuleFileNameA
FindFirstFileExW

comctl32

ImageList_GetImageCount
ImageList_Write
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_SetBkColor
ImageList_Read
DrawStatusTextW
_TrackMouseEvent
ImageList_LoadImageW
ImageList_GetImageRect
ImageList_DrawEx
InitMUILanguage
DrawStatusTextA
ImageList_SetImageCount
CreateMappedBitmap
InitCommonControlsEx
DrawInsert
ImageList_GetDragImage
ImageList_SetIconSize
ImageList_Duplicate
ImageList_Replace
ImageList_DragMove
ImageList_Merge
MakeDragList
ImageList_Add

advapi32

RegEnumValueA
CryptDuplicateHash
CryptGetHashParam

comdlg32

ReplaceTextW

gdi32

SetBitmapDimensionEx
StretchBlt
GetDIBits
EnumFontFamiliesW
AddFontResourceW
GetObjectW
StartDocA
ArcTo

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cba594e1322f55ebc991676f27d42264

Headers

File Characteristics

Imports

user32

kernel32

comctl32

advapi32

comdlg32

gdi32

Sections

.text Size: 72KB - Virtual size: 70KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 84KB - Virtual size: 98KB

.rsrc Size: 92KB - Virtual size: 88KB

.text
Size: 72KB - Virtual size: 70KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 84KB - Virtual size: 98KB

.rsrc
Size: 92KB - Virtual size: 88KB